Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
221031 4.6 警告 Fabrice Bellard - QEMU の block/qcow.c の qcow_open 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2014-0223 2014-11-6 18:32 2014-07-23 Show GitHub Exploit DB Packet Storm
221032 7.5 危険 Fabrice Bellard - QEMU の block/qcow.c の qcow_open 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2014-0222 2014-11-6 18:32 2014-07-23 Show GitHub Exploit DB Packet Storm
221033 7.5 危険 Fabrice Bellard - QEMU の hw/virtio/virtio.c の virtio_load 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2014-0182 2014-11-6 18:32 2014-07-23 Show GitHub Exploit DB Packet Storm
221034 7.5 危険 Fabrice Bellard - QEMU の hw/virtio/virtio.c の virtio_load 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-6399 2014-11-6 18:32 2013-11-4 Show GitHub Exploit DB Packet Storm
221035 7.5 危険 Fabrice Bellard - QEMU の hw/scsi/scsi-bus.c の virtio_scsi_load_request 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-4542 2014-11-6 18:32 2013-06-12 Show GitHub Exploit DB Packet Storm
221036 7.5 危険 Fabrice Bellard - QEMU の hw/usb/bus.c の usb_device_post_load 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-4541 2014-11-6 18:32 2013-06-12 Show GitHub Exploit DB Packet Storm
221037 7.5 危険 Fabrice Bellard - QEMU の scoop_gpio_handler_update におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-4540 2014-11-6 18:32 2013-12-3 Show GitHub Exploit DB Packet Storm
221038 7.5 危険 Fabrice Bellard - QEMU の hw/input/tsc210x.c の tsc210x_load 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-4539 2014-11-6 18:32 2013-12-3 Show GitHub Exploit DB Packet Storm
221039 7.5 危険 Fabrice Bellard - QEMU の hw/display/ssd0323.c の ssd0323_load 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-4538 2014-11-6 18:32 2013-12-3 Show GitHub Exploit DB Packet Storm
221040 7.5 危険 Fabrice Bellard - QEMU の hw/sd/ssi-sd.c の ssi_sd_transfer 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-4537 2014-11-6 18:32 2013-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273261 7.2 HIGH
Network
ibm spectrum_scale
general_parallel_file_system
IBM General Parallel File System is vulnerable to a buffer overflow. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2016-6115 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273262 6.5 MEDIUM
Local
ibm tivoli_storage_manager
tivoli_storage_manager_for_virtual_environments_data_protection_for_vmware
IBM Tivoli Storage Manager discloses unencrypted login credentials to Vmware vCenter that could be obtained by a local user. CWE-255
Credentials Management
CVE-2016-6110 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273263 7.5 HIGH
Network
ibm urbancode_deploy IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties. CWE-200
Information Exposure
CVE-2016-6068 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273264 3.1 LOW
Network
ibm forms_experience_builder IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources. CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2016-6001 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273265 3.7 LOW
Network
ibm sterling_selling_and_fulfillment_foundation IBM Sterling Order Management transmits the session identifier within the URL. When a user is unable to view a certain view due to not being allowed permissions, the website responds with an error pa… CWE-200
Information Exposure
CVE-2016-5953 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273266 5.4 MEDIUM
Network
ibm kenexa_lms IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le… CWE-79
Cross-site Scripting
CVE-2016-5942 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273267 5.7 MEDIUM
Network
ibm kenexa_lms IBM Kenexa LMS on Cloud could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing dot dot sequences (/../) to view arbitra… CWE-22
Path Traversal
CVE-2016-5941 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273268 5.4 MEDIUM
Network
ibm kenexa_lms IBM Kenexa LMS on Cloud is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially le… CWE-79
Cross-site Scripting
CVE-2016-5940 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273269 3.3 LOW
Local
ibm kenexa_lms IBM Kenexa LMS on Cloud allows web pages to be stored locally which can be read by another user on the system. CWE-200
Information Exposure
CVE-2016-5938 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm
273270 6.1 MEDIUM
Network
ibm inotes IBM iNotes is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cred… CWE-79
Cross-site Scripting
CVE-2016-5881 2024-11-21 11:55 2017-02-2 Show GitHub Exploit DB Packet Storm